CVE-2026-23302
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
net: annotate data-races around sk->sk_{data_ready,write_space}
skmsg (and probably other layers) are changing these pointers while other cpus might read them concurrently.
Add corresponding READ_ONCE()/WRITE_ONCE() annotations for UDP, TCP and AF_UNIX.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 604326b41a6fb9b4a78b6179335decee0365cd8c < 279f2b67d1c44ee139bd3fdb221850daa9358449 | affected |
| Linux | Linux | 604326b41a6fb9b4a78b6179335decee0365cd8c < 7ad01905831c815520f1b0486336a03bb7420465 | affected |
| Linux | Linux | 604326b41a6fb9b4a78b6179335decee0365cd8c < c494448bb522bbbb63096540eb2319101a0480ab | affected |
| Linux | Linux | 604326b41a6fb9b4a78b6179335decee0365cd8c < f17c1c4acbe2bd702abce73a847a04a196fab2c5 | affected |
| Linux | Linux | 604326b41a6fb9b4a78b6179335decee0365cd8c < 27fccdbcbbfc4651b6f66756e6fa3f52e051ec23 | affected |
| Linux | Linux | 604326b41a6fb9b4a78b6179335decee0365cd8c < 2ef2b20cf4e04ac8a6ba68493f8780776ff84300 | affected |
| Linux | Linux | 4.20 | affected |
| Linux | Linux | 0 < 4.20 | unaffected |
| Linux | Linux | 6.1.177 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.136 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.82 <= 6.12.* | unaffected |
| Linux | Linux | 6.18.17 <= 6.18.* | unaffected |
| Linux | Linux | 6.19.7 <= 6.19.* | unaffected |
| Linux | Linux | 7.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/279f2b67d1c44ee139bd3fdb221850daa9358449
- https://git.kernel.org/stable/c/7ad01905831c815520f1b0486336a03bb7420465
- https://git.kernel.org/stable/c/c494448bb522bbbb63096540eb2319101a0480ab
- https://git.kernel.org/stable/c/f17c1c4acbe2bd702abce73a847a04a196fab2c5
- https://git.kernel.org/stable/c/27fccdbcbbfc4651b6f66756e6fa3f52e051ec23
- https://git.kernel.org/stable/c/2ef2b20cf4e04ac8a6ba68493f8780776ff84300
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.